Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.18 views

PT-2026-43406

MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.1, user passwords are stored using unsalted MD5 hashes, making them trivially crackable via rainbow tables or GPU-accelerated brute force hashcat. This vulnerability is fixed in 2.9.1...

6.9CVSS5.8AI score0.00083EPSS
Exploits0References2
Wordfence Blog
Wordfence Blog
added 2022/12/14 7:4 p.m.14 views

Wordfence Launches Free Vulnerability Database For Commercial Use – And Launches Security Portal

Today we are incredibly excited to announce that Wordfence is launching an entirely free vulnerability database API and web interface, available for commercial use by hosting companies, security organizations, threat analysts, security researchers, and the WordPress user community. This is part o...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.7 views

Microsoft SharePoint 安全漏洞

Microsoft Office Sharepoint Server is a U.S. Microsoft Microsoft company for enterprise customers and design, web-based content management and collaboration tools. The initial version of the software exists in the form of Office components, and now also still greatly dependent on Office to provid...

8.8CVSS5.6AI score0.01918EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2021/07/16 5:17 p.m.109 views

Critical Juniper Bug Allows DoS, RCE Against Carrier Networks

A critical remote code-execution vulnerability in Juniper Networks’ Steel-Belted Radius SBR Carrier Edition lays open wireless carrier and fixed operator networks to tampering. The SBR Carrier server is used by telecom carriers to manage policies for how subscribers access their networks – by...

9.8CVSS9.2AI score0.02314EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2020/07/21 12:0 a.m.167 views

Important Announcement

ATTENTION: Your vulnerability tests are out of maintenance and not updated since July 1st 2020. Your setup of Greenbone Source Edition will not report about any new threats in your scanned environment since this date! REASON: Your Greenbone setup is connected to a discontinued download protocol o...

Exploits0References1
ATTACKERKB
ATTACKERKB
added 2020/04/21 12:0 a.m.100 views

CVE-2020-4427

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote attacker to bypass security restrictions when configured with SAML authentication. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to bypass the authentication process...

10CVSS9.7AI score0.71363EPSS
In wildExploits10References3
Hacker One
Hacker One
added 2019/07/03 11:17 p.m.50 views

HackerOne: Custom Field Attributes may be created and updated for customers with Custom Field Trial enabled

The Custom Field feature is currently only available for customers on the Enterprise product edition. A trial period can be given by enabling the custom-fields-trial feature for programs who are not on that product edition yet. However, when enabling this feature, the incorrect ordering of an ACL...

1AI score
Exploits0
Rows per page
Query Builder